Biometrically protected device
Abstract
A biometrically protected device including a secure element, for communications with a secure server, a biometric authentication system including a biometric sensor, wherein the biometric authentication system is for controlling access to one or more protected feature(s) of the device, and a power interface for receiving power from an external source and for powering both of the secure element and the biometric authentication system. The biometrically protected device is arranged such that the biometric authentication system remains inactive until the power interface receives power and the secure element provides a command message to the biometric authentication system. The command message is not provided unless the secure element has made a secure connection with the secure server.
Claims
exact text as granted — not AI-modified1 . A biometrically protected device comprising:
a secure element for communications with a secure server; a biometric authentication system including a biometric sensor, wherein the biometric authentication system is for controlling access to one or more protected feature(s) of the device; and a power interface for receiving power from an external source and for powering both of the secure element and the biometric authentication system; wherein the biometrically protected device is arranged such that the biometric authentication system remains inactive until the power interface receives power and the secure element provides a command message to the biometric authentication system, and wherein the command message is not provided unless the secure element has made a secure connection with the secure server.
2 . A device as claimed in claim 1 , wherein the secure element is arranged to make a secure connection in the form of a secure online connection to the secure server, wherein the server is at some remote location from the device.
3 . A device as claimed in claim 1 , wherein the secure element is a secure element for financial transactions and the protected feature(s) include features of the secure element relating to financial transactions.
4 . A device as claimed in claim 1 , wherein once the secure connection has been established then the secure element transmits the command message to the biometric authentication system, and wherein the command message is an electronic message comprising binary encoded pulses, with the content of the message including a cryptographic layer and a proprietary command sublayer.
5 . A device as claimed in claim 1 , wherein the device is arranged such that upon receipt of the command message the biometric authentication system becomes active and it is possible for the user to input a biometric for authentication by the biometric authentication system to thereby enable access the biometrically protected feature(s) of the device; and wherein after activation the biometric authentication system remains active provided that power continues to be received via the power interface.
6 . A device as claimed in claim 1 , wherein the device is capable of contactless transfer of power and/or data using the power interface.
7 . A device as claimed in claim 1 , comprising one or more antennas for contactless transfer of power and/or data via contactless transmission protocols.
8 . A device as claimed in claim 1 , including an antenna for receiving a radio-frequency excitation field from a Proximity Coupling Device (PCD) and for harvesting power from the excitation field; wherein the device is arranged to perform a method using the antenna, the method comprising: receiving, by the antenna, a command from a powered PCD; receiving, by the antenna, a substantially continuous radio-frequency excitation field whilst the PCD waits for a response to the command; activate the biometric authentication system; performing a process in the biometric authentication system; determining a period that has elapsed whilst waiting for a response; and responsive to determining that the period exceeds a predetermined threshold if the process has not been completed, sending by the antenna a request for a wait time extension to the PCD.
9 . A device as claimed in claim 8 , wherein the process performed by the biometric authentication system is one providing a delayed response to the command, wherein a response to the command from the PCD is intentionally delayed making use of the wait time extension so as to allow command processing to be performed.
10 . A device as claimed in claim 1 , comprising an EMV chip interface that is in accordance with standards set for EMV smartcards.
11 . A device as claimed in claim 1 , wherein the biometrically protected device is a smartcard.
12 . A device as claimed in claim 11 , wherein the smartcard has a width of between 85.47 mm and 85.72 mm, a height of between 53.92 mm and 54.03 mm, and a thickness less than 0.84 mm.
13 . A system comprising: one or more biometrically protected device(s) as claimed in claim 1 ; a secure server for making a secure connection with the secure element of the biometrically protected device; and a reader for connection to the biometrically protected device for data and power transfer, wherein the reader provides for an online connection with the secure server, and wherein the secure server is at a different location to the reader.
14 . A system as claimed in claim 13 , wherein the reader is contactless card reader and the biometrically protected device is a smartcard.
15 . A method for controlling a biometrically protected device as claimed in claim 1 , the method comprising: keeping the biometric authentication system inactive until the power interface receives power and the secure element provides a command message to the biometric authentication system to activate it, wherein the command message is not provided unless the secure element has made a secure connection with the secure server.
16 . A method as claimed in claim 15 , wherein the secure element is for authorisation of financial transactions via the secure server and the protected feature(s) include features of the secure element relating to financial transactions, the method comprising: after activation of the biometric authentication system by the command message, receiving a biometric input from a user; authenticating the biometric input via the biometric authentication system; and in the event that the user is an authorised user, enabling access to the features of the secure element relating to financial transactions.
17 . A computer program product for a biometrically protected device comprising: a secure element for communications with a secure server; a biometric authentication system including a biometric sensor; and a power interface for receiving power from an external source and for powering both of the secure element and the biometric authentication system; wherein the computer program product, when executed on the device, will configure the biometric authentication system to remain inactive until the power interface receives power and the secure element provides a command message to the biometric authentication system, and wherein the computer program product, when executed on the device, will configure the secure element so that the command message is not provided unless the secure element has made a secure connection with the secure server.
18 . (canceled)Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.